CWE-385: Covert Timing Channel
low-riskCovert timing channels convey information by modulating some aspect of system behavior over time, so that the program receiving the information can observe system behavior and infer protected information.
Abstraction: Base
Common Consequences
Confidentiality
→
Read Application Data
Real-World Examples (10)
| CVE | CVSS | EPSS | KEV |
|---|---|---|---|
| CVE-2020-29506 | 6.8 | 1.3% | — |
| CVE-2023-46809 | 7.4 | 1.2% | — |
| CVE-2024-2236 | 5.9 | 0.7% | — |
| CVE-2022-24409 | 5.9 | 0.7% | — |
| CVE-2023-49092 | 5.9 | 0.7% | — |
| CVE-2020-35164 | 6.7 | 0.7% | — |
| CVE-2024-26306 | 5.9 | 0.6% | — |
| CVE-2024-23342 | 7.4 | 0.6% | — |
| CVE-2018-10845 | 5.9 | 0.6% | — |
| CVE-2020-35166 | 5.1 | 0.5% | — |
0
/ 100
low-risk
Active Threat
0/50 · Minimal
Exploit Availability
0/50 · Minimal